CVE-2024-42075

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix remap of arena. The bpf arena logic didn't account for mremap operation. Add a refcnt for multiple mmap events to prevent use-after-free in arena_vm_close.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

21 Nov 2024, 09:33

Type Values Removed Values Added
References () https://git.kernel.org/stable/c/87496a1b01e8e2e399428c0db25e106f7961d01e - Patch () https://git.kernel.org/stable/c/87496a1b01e8e2e399428c0db25e106f7961d01e - Patch
References () https://git.kernel.org/stable/c/b90d77e5fd784ada62ddd714d15ee2400c28e1cf - Patch () https://git.kernel.org/stable/c/b90d77e5fd784ada62ddd714d15ee2400c28e1cf - Patch

30 Jul 2024, 19:00

Type Values Removed Values Added
CWE CWE-416
References () https://git.kernel.org/stable/c/87496a1b01e8e2e399428c0db25e106f7961d01e - () https://git.kernel.org/stable/c/87496a1b01e8e2e399428c0db25e106f7961d01e - Patch
References () https://git.kernel.org/stable/c/b90d77e5fd784ada62ddd714d15ee2400c28e1cf - () https://git.kernel.org/stable/c/b90d77e5fd784ada62ddd714d15ee2400c28e1cf - Patch
Summary
  • (es) En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: bpf: Se corrigió la reasignación de arena. La lógica de bpf arena no tuvo en cuenta la operación de mremap. Agregue un refcnt para múltiples eventos mmap para evitar el uso después de la liberación en arena_vm_close.
First Time Linux linux Kernel
Linux
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

29 Jul 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-29 16:15

Updated : 2024-11-21 09:33


NVD link : CVE-2024-42075

Mitre link : CVE-2024-42075

CVE.ORG link : CVE-2024-42075


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-416

Use After Free